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L20: Entry 19 of 20 



File: USPT 



Feb 20, 1990 



US-PAT-NO: 4903296 

DOCUMENT-IDENTIFIER: US 4903296 A 



TITLE: Implementing a shared higher level of privilege on personal computers for 
copy protection of software 

DATE-ISSUED: February 20, 1990 



INVENTOR- INFORMATION : 
NAME 

Chandra; Akhileshwari N. 
Comer ford; Li am D. 
White; Steve R. 



CITY 
Mahopac 
Carmel 
New York 



STATE ZIP CODE 

NY 

NY 

NY 



COUNTRY 



ASSIGNEE-INFORMATION: 
NAME 

International Business Machines 
Corporation 



CITY STATE ZIP CODE COUNTRY TYPE CODE 
Armonk NY 02 



APPL-NO: 06/930219 [PALM] 
DATE FILED: November 12, 1986 

PARENT-CASE: 

This application is a division of U.S. Ser. No. 06/651,184 filed on Nov. 14, 1984, 
now U.S. Pat. No. 4,644,493. 

INT-CL: [04] H04L 9/00 

US-CL-ISSUED: 380/4; 364/969, 364/969.2, 364/969.4 
US-CL-CURRENT: 705 /56; 380 / 282 , 705 /57 

FIELD-OF-SEARCH: 364/200, 364/900, 360/131, 380/3, 380/4, 380/49, 380/25 
PRIOR-ART-DISCLOSED : 



U.S. PATENT DOCUMENTS 



PAT-NO ISSUE-DATE PATENTEE-NAME US-CL 

□ 4168396 September 1979 Best 364/900 

□ 4246638 January 1981 Thomas 364/200 

□ 4465901 August 1984 Best 364/200 
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□ 4558176 December 1985 Arnold et al . 364/900 

□ 4573119 February 1986 Westheimer et al . 364/200 

□ 4577289 March 1986 Comerford et al . 364/900 



ART-UNIT: 237 

PRIMARY-EXAMINER: Heckler; Thomas M. 
ASSISTANT-EXAMINER: Mills; John G. 
ATT Y-AGENT- FIRM: Arnold; Jack M. 



ABSTRACT : 

Method and apparatus which restricts software, distributed on magnetic media, to 
use on a single computing machine. The original medium is functionally uncopyable, 
until it is modified by the execution of a program stored in a tamper proof co- 
processor which forms a part of the computing machine. The modified software on the 
original medium may then be copied, but the copy is operable only on the computing 
machine containing the co-processor that performed the modification. 

4 Claims, 20 Drawing figures 
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L20: Entry 19 of 20 



File: USPT 



Feb 20, 1990 



DOCUMENT-IDENTIFIER: US 4903296 A 

TITLE: Implementing a shared higher level of privilege on personal computers for 
copy protection of software 

Application Filing Date (1) : 
19861112 

Detailed Description Text (21) : 

3. The decryption key in encrypted form where the encryption is by the RSA public 
key provided by the support hardware manufacturer. 

Current US Cross Reference Classification (2 ) : 
705/57 
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L20: Entry 19 of 20 



File: USPT 



Feb 20, 1990 



DOCUMENT- IDENTIFIER : US 4903296 A 

TITLE: Implementing a shared higher level of privilege on personal computers for 
copy protection of software 

Application Filing Date (1) : 
19861112 

Detailed Description Text (21) : 

3. The decryption key in encrypted form where the encryption is by the RSA public 
key provided by the support hardware manufacturer. 

Current US Cross Reference Classification (2) : 
705/57 
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L20: Entry 20 of 20 File: USPT Dec 10, 1985 

US-PAT-NO: 4558176 

DOCUMENT- IDENTIFIER: US 4558176 A 

TITLE: Computer systems to inhibit unauthorized copying, unauthorized usage, and 
automated cracking of protected software 

DATE-ISSUED: December 10, 1985 

INVENTOR-INFORMATION: 

NAME CITY STATE 

Arnold; Mark G. Laramie WY 

Winkel; Mark D. Loveland CO 

APPL-NO: 06/420562 [PALM] 
DATE FILED: September 20, 1982 

INT-CL: [04] H04K 9/00 

US-CL-ISSUED: 17 8/22 .08; 17 8/22 .09, 364/900 
US-CL-CURRENT: 713/1_90; 380 /29, 705 /51 

FIELD-OF-SEARCH: 178/22.08, 178/22.09, 364/200, 364/300, 364/900, 340/825.34 
PRIOR-ART-DISCLOSED : 

U.S. PATENT DOCUMENTS 





PAT-NO 


IS SUE -DATE 


PATENTEE -NAME 


US-CL 


□ 


3958081 


June 197 6 


Ehrsam et al . 


364/200 


D 


3996449 


December 197 6 


Attanasio et al . 


340/825.34 


□ 


4087856 


May 1978 


Attanasio 


364/200 


□ 


4120030 


October 1978 


Johnstone 




□ 


4168396 


September 1979 


Best 




□ 


4183085 


January 1980 


Roberts et al . 


364/200 


□ 


4193131 


March 1980 


Lennon et al . 
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4200770 


April 1980 


Hellman et al . 


178/22.11 
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4238854 


December 1980 


Ehrsam et al . 
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4454594 


June 1984 


Heffron et al. 


364/900 


□ 


4458315 


July 1984 


Uchenick 


364/200 


□ 


4471163 


September 1984 


Donald et al . 


364/200 



OTHER PUBLICATIONS 

Diffie et al . , "Privacy & Authentication: An Introduction to Cryptography", IEEE 
Trans. Inform. Theory, Mar. 1979, pp. 397-427. 

Kunheim, Alan, Cryptograph: A Primer, 1981, pp. 6-8, 285, 286, 294, 334, 335. 
ART-UNIT: 221 

PRIMARY-EXAMINER: Cangialosi; Salvatore 
ASSISTANT-EXAMINER : Steinberger ; Brian 



ABSTRACT : 

A method and apparatus are provided for inhibiting unauthorized copying, 
unauthorized usage and automated cracking of proprietary software used in computer 
systems. The computer systems execute protected programs, which are protected by 
encapsulation and/or encryption. To provide security against unauthorized copying 
of software, means are provided that detect and inhibit automated cracking of 
protected programs. These means will destroy or make inaccessible information in 
the CPU during conditions when automated cracking could occur. These means will 
also store interrupt contexts in secret to prevent implementation of automated 
cracking. Additional features may be provided to allow operation as a general 
purpose computer system, where protected programs are distributed using public key 
cryptography and a means is provided to convert from this distribution form to the 
protected execution form. 

12 Claims, 13 Drawing figures 
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File: USPT 



Dec 10, 1985 



DOCUMENT- IDENTIFIER: US 4558176 A 

TITLE: Computer systems to inhibit unauthorized copying, unauthorized usage, and 
automated cracking of protected software 

Application Filing Date (1) : 
19820920 

Detailed Description Text (7) : 

In the preferred embodiment, the distribution format consists of two parts: a 
public key preamble, followed by the program encrypted using a large block cipher, 
such as DES. The software vendor will first select a DES key which will be used to 
encrypt the program. Then the vendor forms the public key preamble by encrypting 
the DES key using a public key algorithm with the public encryption key for the 
customer's computer. (Note that each computer will have a unique decryption key 
built into it and a corresponding encryption key that is made public . ) This system 
provides good security while making distribution easy and permitting reasonable 
program load time. 

Detailed Description Text (104) : 

When the user orders software, he sends the PUBRAN' s public encryption key, the 
serial number, and manufacturer's digital signature number to the software vendor. 
The software vendor then checks the digital signature to determine if the user is 
using a software simulator or a bonafide PUBRAN unit made by the manufacturer. In 
the latter case, the software vendor will customize the software for the user's 
PUBRAN unit and then send it to the user. The format for secure program 
distribution consists of the body of the program which is encrypted in an address 
dependent large block cipher (e.g., a product cipher such as DES). This is preceded 
by a public key preamble containing the encryption/decryption key for the large 
block cipher. Standard media, such as floppy diskettes, are used for distribution. 



Current US Cross Reference Classification (2) : 
705/51 
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L20: Entry 3 of 20 



File: USPT 



Oct 22, 2002 



US-PAT-NO: 6470085 

DOCUMENT-IDENTIFIER: US 6470085 Bl 

** See image for Certificate of Correction ** 

TITLE: Application package and system for permitting a user to use distributed 
application package on the term of the use thereof 

DATE-ISSUED: October 22, 2002 



INVENTOR- INFORMATION : 
NAME 

Uranaka; Sachiko 
Kiyono; Masaki 



CITY 

Tokyo 

Kamakura 



STATE 



ZIP CODE 



COUNTRY 

JP 

JP 



ASSIGNEE-INFORMATION : 

NAME CITY STATE ZIP CODE COUNTRY TYPE CODE 

Matsushita Electric Industrial Co., Ltd. Osaka JP 03 

APPL-NO: 08/915665 [PALM] 
DATE FILED: August 21, 1997 



FORE I GN-APPL- PRIORITY -DATA: 
COUNTRY APPL-NO 
JP 8-286345 



APPL-DATE 
October 29, 1996 



INT-CL: [07] H04 L 9/32 

US-CL-ISSUED: 380/231 
US-CL-CURRENT: 380 / 231 

FIELD-OF-SEARCH: 380/202, 380/231, 705/51, 705/52, 705/56, 705/57, 705/58 
PRIOR-ART-DISCLOSED : 

U.S. PATENT DOCUMENTS 



leiearfli 



PAT-NO ISSUE-DATE PATENTEE -NAME US-CL 

□ 5319705 June 1994 Halter et al . 705/54 

□ 5440631 August 1995 Akiyama et al . 705/53 

□ 5857020 January 1999 Peterson, Jr. 705/52 
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□ 5907617 May 1999 



Ronning 



705/52 



FOREIGN PATENT DOCUMENTS 



FOREIGN- PAT -NO 



PUBN-DATE 



COUNTRY 



CLASS 



7-288519 



October 1995 



JP 



7-295674 



November 1995 



JP 



8-54951 



February 1996 



JP 



OTHER PUBLICATIONS 



Schneier, Applied Cryptography, Oct. 1995, John Wiley and Sons, Inc., p. 368.* 
Menezes et al. Handbook of Applied Cryptography, CRC Press, Oct. 17, 1996, p. 397. 

ART-UNIT: 2131 

PRIMARY-EXAMINER: Hayes; Gail 

ASSISTANT-EXAMINER: Lathan; Bryan 

ATT Y- AGENT- FIRM: Gopstein; Israel Clark & Brody 



A system for permitting only an authentic user to play a desired application 
contained in a distributed application package in one of predetermined operation, 
e.g., free play mode, charged mode, limit-attached play mode, etc. The system 
comprises a client for playing an application under the control of a server 
connected with the client through a communication network. The application package 
(the volume) includes a distribution descriptor which contains mode codes assigned 
to the volume and the applications of the volume. The data of distribution 
descriptor is decided and stored in the descriptor at the time of distribution of 
the volume. This feature makes the system flexible. There is also disclosed a 
system operatable without communicating with a server. 

42 Claims, 39 Drawing figures 
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File: USPT 



Oct 22, 2002 



DOCUMENT-IDENTIFIER: US 6470085 Bl 

** See image for Certificate of Correction ** 

TITLE: Application package and system for permitting a user to use distributed 
application package on the term of the use thereof 



Application Filing Date ( 1) : 
19970821 

Brief Summary Text (13) : 

For any type of charged information, charged information has been encrypted with a 
key and recorded on a DVD when obtained by a user. If distributed charged 
information to be played is of the limitlessly playable type, the charged 
information processing is achieved in the following way: the key is first obtained 
in a user public key-encrypted form from the DVD on which the key has been recorded 
at the time of selling the DVD; the user public key-encrypted key is decrypted with 
a user secret key stored in a IC card into a decrypted key; and the encrypted 
charged information is decrypted with the decrypted key and consumed (that is, 
played or executed) . The user-public key-encrypted key may be obtained on line from 
the server serving the client (device) . 

Current US Original Classification ( 1 ) : 
380/231 
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File: USPT 



Aug 6, 2002 



US-PAT-NO: 6430292 

DOCUMENT- IDENTIFIER: US 6430292 Bl 

TITLE: System and method for controlling disclosure time of information 
DATE-ISSUED: August 6, 2002 



INVENTOR- INFORMATION : 

NAME CITY 

Ito; Hiromichi Yokohama 

Arai; Masato Yokohama 



STATE 



ZIP CODE 



COUNTRY 

JP 

JP 



ASSIGNEE-INFORMATION: 
NAME CITY 
Hitachi, Ltd. Tokyo 

APPL-NO: 09/110144 [PALM] 
DATE FILED: July 6, 1998 

FORE I GN-APPL- PRIORITY-DATA: 
COUNTRY APPL-NO 
JP 9-181186 

INT-CL: [07] H04 L 9/00 



STATE 



ZIP CODE 



COUNTRY 
JP 



APPL-DATE 
July 7, 1997 



US-CL-ISSUED: 38 0/28 0; 38 0/277, 38 0/27 8, 380/27 9 
US-CL-CURRENT: 380 /280; 380 / 277 , 380/278, 380/279 

FIELD-OF-SEARCH: 380/277-280, 72 5/31, 7 05/51, 705/54 
PRIOR-ART-DISCLOSED : 

U.S. PATENT DOCUMENTS 



TYPE CODE 
03 



□ 
□ 
□ 
□ 
□ 



PAT-NO 

5249230 

5319705 

5392351 

5594794 

5640453 



ISSUE-DATE 
September 1993 
June 1994 
February 1995 
January 1997 
June 1997 



PATENTEE-NAME 
Mihm, Jr. 
Halter et al . 
Hasebe et al . 
Eyer et al . 
Schuchman et al . 



US-CL 

380/249 

705/54 

705/51 

380/231 

380/211 
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n 5706348 January 1998 Gray et al . 713/160 

□ 5889861 March 1999 Ohashi et al. 380/247 

□ 6029045 February 2000 Picco et al . 455/5.1 

□ 6144401 November 2000 Casement et al . 725/93 

□ 6157723 December 2000 Schultz 380/273 

FOREIGN PATENT DOCUMENTS 



FOREIGN- PAT -NO PUBN-DATE COUNTRY CLASS 

8102735 April 1996 JP 

OTHER PUBLICATIONS 

E. Okamoto, Angio Riron Nyuumon, "An Introduction of the Theory of Cryptography", 
pp. 11-112, Kyoritsu Syuppan Kabushiki Kaisay, Feb. 25, 1993. 

ART-UNIT: 2132 

PRIMARY-EXAMINER: Decady; Albert 
ASSISTANT -EXAMINER : Kabakoff; Steve 

ATTY-AGENT-FIRM: Antonelli, Terry, Stout & Kraus, LLP 



ABSTRACT : 

A key managing system for implementing simultaneous disclosure of information. The 
invention includes an information transmitting apparatus which transmits a date and 
time at which secrecy protection of information is ended to a key controlling 
apparatus. The key controlling apparatus searches a key control table indicating a 
relation between decryption keys and decryption key disclosure dates & times for an 
encryption key that forms a pair in conjunction with a decryption key associated 
with the date & time transmitted by the information transmitting apparatus. The key 
controlling apparatus then transmits an encryption key found in the search to the 
information transmitting apparatus. The key controlling apparatus also discloses a 
decryption key for the present date & time to an information receiving apparatus in 
response to a request for a decryption key at a present date and time. The 
information transmitting apparatus, upon receipt of the encryption key, encrypts 
information by using the encryption key and then transmits the encrypted 
information to the information receiving apparatus. The date and time, at which 
secrecy protection of information is ended is appended to the encrypted 
information. The information receiving apparatus, upon the present date and time 
becoming coincident with the date and time appended to the received encrypted 
information, acquires a disclosed decryption key and decrypts the encrypted 
information by using the decryption key. 

29 Claims, 15 Drawing figures 
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File: USPT 



Aug 6, 2002 



DOCUMENT- IDENTIFIER : US 6430292 Bl 

TITLE: System and method for controlling disclosure time of information 

Application Filing Date (1) : 
19980706 

Current US Cross Reference Classification (2) : 
380/278 



12. A key controlling apparatus for controlling publicity of encryption and 
decryption keys used for encrypting and decrypting information respectively, said 
key controlling apparatus comprising: a key storage for storing at least a pair of 
said encryption and decryption keys for encrypting and decrypting information 
respectively; a key control table storage for storing a key control table 
indicating a relation between said decryption keys stored in said key storage and 
disclosure times of said decryption keys; a key searching means for searching said 
key control table stored in said key control table storage for a decryption key 
that can be disclosed at a current time specified by an information encrypting 
apparatus for encrypting information and an encryption key forming a pair 
corresponding to said decryption key; an encryption key transmitting means for 
transmitting an encryption key resulting from the search performed by said key 
searching means to said information encrypting apparatus; and a decryption key 
disclosing means for disclosing a decryption key, that can be disclosed at the 
current time according to said relation shown by said key control table stored in 
said key control table storage, to at least one of a plurality of information 
decrypting apparatuses each for decrypting information to permit said at least one 
information decrypting apparatus to decrypt encrypted data included in encrypted 
information having been previously acquired by said information decrypting 
apparatus, wherein said encrypted data is decrypted using said decryption key 
acquired at a disclosure time included in said encrypted information. 

13. An information encrypting apparatus for encrypting information, comprising: 
encryption key acquiring means for acquiring an encryption key from a key 
controlling apparatus for controlling publicity of encryption and decryption keys 
by transmitting a time, at which secrecy protection of data to be encrypted will be 
ended, to said key controlling apparatus wherein said encryption key forms a pair 
corresponding to one of said decryption keys to be disclosed at a disclosure time 
in said key controlling apparatus; data encrypting means for encrypting data by 
using said encryption key acquired by said encryption key acquiring means; and 
encrypted information forming means for forming encrypted information to be 
transmitted to an information decrypting apparatus for decrypting information by 
adding data representing the time, at which secrecy protection of said encrypted 
data is to be ended, to said data encrypted by said data encrypting means. 
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File: USPT 



Jul 9, 2002 



US- PAT-NO : 6418421 

DOCUMENT-IDENTIFIER: US 6418421 Bl 

TITLE: Multimedia player for an electronic content delivery system 
DATE-ISSUED: July 9, 2002 



INVENTOR- INFORMATION : 
NAME 

Hurtado; Marco M. 
Gruse; George Gregory 
Downs; Edgar 
Milsted; Kenneth Louis 



CITY 

Boca Raton 
Lighthouse Point 
Fort Lauderdale 
Boynton Beach 



STATE ZIP CODE 

FL 

FL 

FL 

FL 



COUNTRY 



ASSIGNEE-INFORMATION: 
NAME 

International Business Machines 
Corporation 



CITY STATE ZIP CODE COUNTRY TYPE CODE 
Armonk NY 02 



APPL-NO: 09/208774 [PALM] 
DATE FILED: December 10, 1998 

PARENT-CASE: 

CROSS-REFERENCE TO RELATED APPLICATIONS This is a divisional of application Ser. 
No. 09/177,096, filed Oct. 22, 1998, which is a continuation-in-part of application 
Ser. No. 09/133,519, filed Aug. 13, 1998, now U.S. Pat. No. 6,226,618. The entire 
disclosure of prior application Ser. No. 09/177,096 is herein incorporated by 
reference. ATTORNEY APPLICATION TITLE OF THE DOC. NO. Ser. No. INVENTION INVENTOR 
(S) SE9-98-006 Secure Electronic Kenneth L. Milsted Content George Gregory 
Management Gruse Marco M. Hurtado Edgar Downs Cesar Medina SE9-98-007 Multimedia 
George Gregory Player Toolkit Gruse John J. Dorak, Jr. Kenneth L. Milsted SE9-98- 
00 8 Multimedia Kenneth L. Milsted Content Creation Qing Gong System Edgar Downs 
SE9-98-010 Key Management Jeffrey B. Lotspiech System for End- Marco M. Hurtado 
User Digital George Gregory Player Gruse Kenneth L. Milsted SE9-98-013 A method to 
Kenneth L. Milsted identify CD Craig Kindell content Qing Gong SE9-98-014 Toolkit 
for Richard Spagna delivering elec- Kenneth L. Milsted tronic content David P. 
Lybrand from an Online Edgar Downs store. SE9-98-015 A method and Kenneth L. 
Milsted apparatus to auto- Kha Kinh Nguyen matically create Qing Gong encode 
digital content SE9-98-016 A method and Kenneth L. Milsted apparatus to Qing Gong 
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ART-UNIT: 2132 

PRIMARY-EXAMINER: Decady; Albert 
ASSISTANT-EXAMINER: Smithers; Matthew 

ATTY-AGENT-FIRM: Meyers; Steven J. Shofi; David M. Fleit, Kain, Gibbons, Gutman & 
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A system for tracking usage of digital content on user devices. Electronic stores 
coupled to a network sell licenses to play digital content data to users. Content 
players, which receive from the network the licensed content data, are used to play 
the licensed content data. Additionally, a logging site that is coupled to the 
network tracks the playing of the content data. In particular, the logging site 
receives play information from the network, and the play information includes the 
number of times that the content data has been played by the associated content 
player. Also provided is a method for tracking usage of digital content on user 
devices. According to the method, a license to play digital content data is sold to 
a user, and the licensed content data is transmitted to a content player for the 
user. Further, information is transmitted to a logging site whenever the content 
data is played by the content player or copied from the content player to an 
external medium so that usage of the licensed content data can be tracked. 

46 Claims, 21 Drawing figures 
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A system for tracking usage of digital content on user devices. Electronic stores 
coupled to a network sell licenses to play digital content data to users. Content 
players, which receive from the network the licensed content data, are used to play 
the licensed content data. Additionally, a logging site that is coupled to the 
network tracks the playing of the content data. In particular, the logging site 
receives play information from the network, and the play information includes the 
number of times that the content data has been played by the associated content 
player. Also provided is a method for tracking usage of digital content on user 
devices. According to the method, a license to play digital content data is sold to 
a user, and the licensed content data is transmitted to a content player for the 
user. Further, information is transmitted to a logging site whenever the content 
data is played by the content player or copied from the content player to an 
external medium so that usage of the licensed content data can be tracked. 

46 Claims, 21 Drawing figures 
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File: USPT 



Jul 9, 2002 



DOCUMENT- IDENTIFIER : US 6418421 Bl 

TITLE: Multimedia player for an electronic content delivery system 

Application Filing Date (1) : 
19981210 

Brief Summary Text (18) : 

There is a need to overcome the above-mentioned drawbacks and to provide a 
multimedia player for an electronic content delivery system. One embodiment of the 
present invention provides a method of playing digital content data that has been 
compressed and encrypted with a first encrypting key on a system. According to the 
method, at least part of the content data is decrypted with a first decrypting key 
that corresponds to the first encrypting key. The decrypted content data is 
decompressed to produce decompressed content data, and the decompressed content 
data is played. In one preferred method, multiple segments of a second decrypting 
key that are stored separately on the system are retrieved, and the first 
decrypting key is decrypted using the second decrypting key. In such embodiments, 
the first decrypting key can be used to decrypt data that has been encrypted with 
the first encrypting key, and the second decrypting key can be used to decrypt data 
that has been encrypted with the second encrypting key. Further, in various 
embodiments, an encrypting key and its corresponding decrypting key can be 
symmetric keys (i.e., identical) or a key pair (e.g., a public key and its 
corresponding private key) . 
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ABSTRACT : 

A multi-application IC card system and method is disclosed providing a secure data 
transmission technique. The method is used, for example, to load an application 
from an application provider, which could be remote, to an IC card. At least a 
portion of the application is encrypted using a transfer key. The transfer key is 
then encrypted using the public key of a public/secret key pair of the intended IC 
card to form a key transformation unit. The encrypted application and key 
transformation unit are then sent to the IC card and the IC card decrypts the key 
transformation unit using its secret key. The transfer key is then recovered and 
used to decrypt the encrypted application. The application can then by stored on 
the IC card and accessed by the card user. 

74 Claims, 11 Drawing figures 
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TITLE: Key transformation unit for an IC card 

Application Filing Date (1) : 
19980511 

Brief Summary Text (13) : 

In a preferred embodiment, the secure loading system and method allows the 
application provider to encrypt two or more portions of the application to be 
transmitted with two or more different keys, encrypt the two or more keys with the 
public key of the IC card to form a key transformation unit including the locations 
of the encrypted portions. Both the encrypted application and the key 
transformation unit are sent to the IC card. Because the decryption keys are 
encrypted with the IC card's public key, only the IC card's secret key can decrypt 
the key transformation unit. The transfer keys and the locations of the encrypted 
portions are recovered from the decrypted key transformation unit and the 
application is decrypted using the recovered transfer keys. This ensures that only 
the intended IC card can decrypt and use the application which was transmitted to 
that IC card. 
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ABSTRACT : 

Disclosed is a method and apparatus of securely providing data to a user's system. 
The data is encrypted so as to only be decryptable by a data decrypting key, the 
data decrypting key being encrypted using a first public key, and the encrypted 
data being accessible to the user's system, the method comprising the steps of: 
transferring the encrypted data decrypting key to a clearing house that possesses a 
first private key, which corresponds to the first public key; decrypting the data 
decrypting key using the first private key; re -encrypting the data decrypting key 
using a second public key; transferring the re -encrypted data decrypting key to the 
user's system, the user's system possessing a second private key, which corresponds 
to the second public key; and decrypting the re -encrypted data decrypting key using 
the second private key. 

26 Claims, 20 Drawing figures 



Previous Doc Next Doc Go to Doc# 



http://westbrs:9000/bin/g^ 



11/13/05 



I First Hit Fwd Refs Previous Doc Next Doc Go to Doc# 

□ j Generate Collection I : Print 1 



L20: Entry 7 of 20 File: USPT May 1, 2001 



DOCUMENT- IDENTIFIER : US 6226618 Bl 

TITLE: Electronic content delivery system 



Abstract Text (1) : 

Disclosed is a method and apparatus of securely providing data to a user's system. 
The data is encrypted so as to only be decryptable by a data decrypting key, the 
data decrypting key being encrypted using a first public key, and the encrypted 
data being accessible to the user's system, the method comprising the steps of: 
transferring the encrypted data decrypting key to a clearing house that possesses a 
first private key, which corresponds to the first public key; decrypting the data 
decrypting key using the first private key; re -encrypting the data decrypting key 
using a second public key; transferring the re -encrypted data decrypting key to the 
user's system, the user's system possessing a second private key, which corresponds 
to the second public key; and decrypting the re -encrypted data decrypting key using 
the second private key. 

Application Filing Date (1) : 
19980813 

Brief Summary Text (12) : 

Briefly, in accordance with the present invention, disclosed is a method and 
apparatus of securely providing data to a user's system. The data is encrypted so 
as to only be decryptable by a data decrypting key, the data decrypting key being 
encrypted using a first public key, and the encrypted data being accessible to the 
user's system, the method comprising the steps of: transferring the encrypted data 
decrypting key to a clearing house that possesses a first private key, which 
corresponds to the first public key; decrypting the data decrypting key using the 
first private key; re -encrypting the data decrypting key using ia second public 
key; transferring the re -encrypted data decrypting key to the user's system, the 
user's system possessing a second private key, which corresponds to the second 
public key; and decrypting the re -encrypted data decrypting key using the second 
private key. 

Current US Cross Reference Classification (9) : 
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CLAIMS : 

5. The method as defined in claim 4, wherein the step of transferring the decrypted 
first decrypting key includes the sub-steps of: 

re -encrypting the first decrypting key using a third encrypting key, the third 
encrypting key being a public key of the user; 
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transferring the decrypted and re-encrypted first decrypting key to the user's 
system; and 

decrypting the re-encrypted first decrypting key using a third decrypting key, the 
third decrypting key being a corresponding private, key of the- user. - 

11. A method of securely providing data to a user's system, the data being 
encrypted so as to only be decryptable by a data decrypting key, the data 
decrypting key being encrypted using a first public key, and the encrypted data 
being accessible to the user's system, said method comprising the steps of: 

transferring the encrypted data decrypting key to a clearing house that possesses a 
first private key, which corresponds to the first public key; 

decrypting the data decrypting key using the first private key; 

re -encrypting the data decrypting key using a second public key; 

transferring the re -encrypted data decrypting key to the user's system, the user's 
system possessing a second private key, which corresponds to the second public key; 
and 

decrypting the re-encrypted data decrypting key using the second private key. 

17. A method of operating a clearinghouse to provide integrity in a channel of 
commerce that includes a provider, a distributor, and a purchaser, the provider 
producing data and encrypting the data so as to only be decryptable by a data 
decrypting key, the encrypted data being accessible to the purchaser, said method 
comprising the steps of: 

encrypting the data decrypting key using a public key of the clearinghouse; 
sending the encrypted data decrypting key from the provider to the distributor; 

when the purchaser desires to purchase the data or a license to use the data, 
sending the encrypted data decrypting key from the distributor to the purchasers- 
sending the encrypted data decrypting key from the purchaser to the clearing houses- 
decrypting the data decrypting key using a private key of the clearinghouse and re^ 
encrypting the data decrypting key using a public key of the purchaser; and 

sending the re-encrypted data decrypting key from the clearinghouse to the 
purchaser . 

21. A system for securely providing data to a user's system, the system comprising: 



a content system; 
a first public key; 

a first private key; which corresponds to the first public key; 
a data encrypting key; 

a data de-encrypting key for de-encrypting data encrypted using the data encrypting 
key; 
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first data encryption means for encrypting data so as to be decryptable only by a 
data decrypting key; 

second data encryption means, using the first public key, for encrypting the 
decrypting key ; 

a clearing house; 

first transferring means for transferring the data decrypting key which has been 
encrypted to the clearing house, wherein the clearinghouse possesses the first 
private key; 

first decrypting means for decrypting the data decrypting key using the first 
private key; 

a second public key; 

a second private key; which corresponds to the second public key; 

re-encryption means for re -encrypting the data decrypting key using the second 
public key; 

second transferring means for transferring the re-encrypted data decrypting key to 
the user's system, wherein the user's system possesses the second private key; and 

second decrypting means for decrypting the re-encrypted data decrypting key using 
the second private key. 
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ART-UNIT: 277 

PRIMARY-EXAMINER: Peeso; Thomas R. 

ATTY-AGENT-FIRM: Schweitzer Cornman Gross & Bondell LLP 



ABSTRACT : 

A method is provided for an escrow cryptosystem combined with an unescrowed digital 
signature scheme that uses a single public key per user. This system is overhead- 
free, does not require a cryptographic tamper-proof hardware implementation (i.e., 
can be done in software), and is publicly verifiable. The system cannot be used 
subliminally to enable a shadow public key system. Namely, an unescrowed public key 
system that is publicly displayed in a covert fashion. The cryptosystem contains a 
key generation mechanism that outputs a key triplet, and a certificate of proof 
that the keys were generated according to the algorithm. The key triplet consists 
of a public key, a private decryption key, and a private signing key. Using the 
public key and the certificate, the triplet can be verified efficiently by anyone 
to have the following properties: (1) the private signing key is known to the user, 
and (2) the private decryption key is recoverable by the escrow authorities. The 
system assures that the escrow authorities are not able to forge signatures or get 
the private signing key. The system is designed so that its internals can be made 
publicly scrutinizable (e.g., it can be distributed in source code form). 

20 Claims, 9 Drawing figures 
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In the recovery process, the escrow authorities use the user's certificate of 
recoverability, which is obtained from the CA, as an input signal. The escrow 
authorities process the certificate of recoverability, and the corresponding user's 
private decryption key or data encrypted using the corresponding public key is the 
resulting output signal. The escrow authorities never get access to the users 
signature key and cannot forge his signature. 

Current US Cross Reference Classification (1) : 
380/278 



5. A method for public key cryptosystem including a subset of the operations of 
encryption, decryption, key exchange, signing, signature verification, and 
authentication, involving a public key function based on nested trapdoors 
functions . 
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ABSTRACT: 



A method and apparatus for extending secure communication operations via shared 
lists is accomplished by creating a shared list in accordance with authorization 
parameters by one user and subsequently accessing the shared list via the 
authorization parameters by this and other users. To create the list, a user within 
the secured communication system determines whether it has been enabled, or 
authorized, to create a shared list. If so, the user identifies at least one other 
user to be added to the shared list. Having identified another user, the user 
creating the shared list verifies that the secure communication parameters (which 
includes a public key certificate of an end-user or of a certification authority) 
it has received regarding the another user is trustworthy. If the secure 
communication parameters are identified as trustworthy, the secure communication 
parameters of the another user are added to the shared list. To authenticate the 
shared list, the user creating the list digitally signs it. Once the shared list is 
created, other users, if authorized, may access the shared list to obtain 
certificates (e.g., encryption and/or signature verification certificates) of the 
users contained in the list. 

2 9 Claims, 5 Drawing figures 
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As an alternative to the certification authority 22 being a stand-alone computing 
device, it may be embodied in the same computing device as the server/manager 24. 
The server/manager 24 administers the day to day operations of the secured 
communications system 10. For example, the day to day operations of the 
certification authority and/or server/manager include, but are not limited to, 
enabling end-users as members of a secure communications system, generating key 
pairs, generating certificates (e.g. for encryption or digital signatures), 
revoking certificates or public keys of end-users or other authorities which have 
previously been issued certificates, and key recovery (e.g. allowing end-users to 
be restored with encryption/decryption keys which have been lost, for example, due 
a forgotten password) . Typically, to function as a server/manager 24, a computing 
device will include secure management software. For example, the secure management 
software may be Entrust/Manager manufactured by Entrust Technologies, Limited. 
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Current US Cross Reference Classification (3) : 
380/278 



Previous Doc 



Next Doc 



Go to Doc# 



http://westbrs:9000ftinYgate.exe 11/13/05 



First Hit Fwd Refs 



Previous Doc Next Doc Go to Doc# 



Generate Collection 



Print I 



L20: Entry 10 of 20 File: USPT 

US-PAT-NO: 6072874 

DOCUMENT- IDENTIFIER : US 6072874 A 

TITLE: Signing method and apparatus using the same 
DATE-ISSUED: June 6, 2000 



Jun 6, 2000 



INVENTOR-INFORMATION: 
NAME 

Shin; Kil-Ho 
Kobayashi ; Kenichi 
Aratani; Toru 



CITY 

Nakai-machi 
Nakai-machi 
Nakai-machi 



STATE 



ZIP CODE 



COUNTRY 

JP 

JP 

JP 



AS S I GNE E - I NFORMAT I ON : 
NAME 

Fuji Xerox Co., Ltd. 

APPL-NO: 08/777 047 [PALM] 
DATE FILED: December 30, 1996 

FORE I GN-APPL- PRIORITY- DATA : 
COUNTRY APPL-NO 
JP 8-011568 

INT-CL: [07] H04 N 7/167 



CITY STATE 
Tokyo 



ZIP CODE 



COUNTRY 
JP 



APPL-DATE 
January 26, 1996 



TYPE CODE 
03 



US-CL-ISSUED: 380/231; 380/229, 380/232, 380/278 
US -CL- CURRENT: 380/ 231 ; 380/ 229 , 380 / 232 , 380 /278 

FIELD-OF-SEARCH : 380/4, 380/23, 380/25, 380/231, 380/232, 380/229, 380/278 
PRIOR-ART-DISCLOSED : 

U.S. PATENT DOCUMENTS 



piears 



□ 
□ 
□ 
□ 



PAT-NO 

5050213 

5457746 

5537473 

5557679 



ISSUE-DATE 
September 1991 
October 1995 
July 1996 
September 1996 



PATENTEE-NAME 
Shear 
Dolphin 
Saward 
Julin et al . 



US-CL 

380/25 

380/4 

380/16 

380/23 



http://westbrs:9000/bin/gatexxe?f^fo 11/13/05 



n 
n 
□ 
n 



5727065 
5742677 



5825876 



5845281 



March 1998 
April 1998 
October 1998 
December 1998 



Dillon 

Pinder et al. 
Peterson, Jr. 
Benson et al . 



380/49 
380/4 
380/4 
707/9 



FOREIGN PATENT DOCUMENTS 



FOREIGN- PAT -NO 
4-334227 



PUBN-DATE 
November 1992 



COUNTRY 
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CLASS 



ART-UNIT: 276 

PRIMARY-EXAMINER: Hayes; Gail O. 
ASSISTANT -EXAMINER : Song; Ho S. 
ATTY-AGENT-FIRM: Oliff & Berridge, PLC 

ABSTRACT : 

The present invention provides a signing apparatus used for signing by a user on 
usage information of a source provided in a format made available by the use of key 
information. The apparatus includes a unit for generating the usage information 
which is to be signed, a unit for performing a first computation by utilizing the 
key information which has been encrypted and the usage information, a unit for 
performing a second computation by utilizing a user's private key and a result of 
the first computation. The apparatus further includes a unit for performing a third 
computation by utilizing a result of the second computation, and thereby generating 
the key information which has been decrypted and a result of the computation 
performed on the usage information by utilizing the user's private key. The 
apparatus further includes a unit for making the source available by utilizing the 
decrypted key information. 

13 Claims, 4 Drawing figures 
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DOCUMENT- IDENTIFIER: US 6072874 A 

TITLE: Signing method and apparatus using the same 



Application Filing Date ( 1) : 
19961230 

Brief Summary Text ( 6) : 

Japanese Patent Application Laid-Open No. Hei . 4-334227 (1992) discloses a method 
of forcing a user of charged broadcasting program to execute the digital signature 
on fee imposition information so that future denial of use of the charged program 
may be prevented. According to the invention of the Laid-Open publication, an 
encrypted program and a decryption key for decrypting the encrypted program are 
transmitted to a broadcasting program receiving decoder from the broadcasting 
station. The decoder receives the request for providing a program from the 
receiver, and notifies the receiver of the amount of the fee imposed on watching 
and listening to the program. If the amount of the fee is acceptable to the 
receiver, he/she executes digital signature with respect to the amount of the fee 
and returns it to the decoder. Then the decoder examines the returned digital 
signature of the amount of the fee to verify whether the signature is generated by 
a legitimate receiver. After legitimacy of the signature is verified, the decoder 
decrypts the requested program by the key obtained in advance, and provides the 
program to the receiver. 
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ART-UNIT: 362 

PRIMARY-EXAMINER: Gregory; Bernarr E. 
ATT Y-AGENT- FIRM: Rivers; Brian T. 



ABSTRACT : 

A method for sending a secure message in a telecommunications system utilizing 
public encryption keys. All authentication parameters of each of the users, 
including each user's decryption key that is known only to the user, are used to 
verify, by public key methods, the identity of a user sending a communication to 
another user of the system. During the authentication process, an encryption key 
for use in communications between the two users may also be generated. The 
generated encryption key may be a private session key. Once the initial 
authentication is completed, the private session key can be used to perform 
encryption that is less computationally demanding than public key methods. In an 
embodiment of the invention, two communicating users may use the method to 
authenticate each other and generate an encryption key that is used to encrypt 
subsequent communications between the users. During the process of this embodiment, 
two encryption keys are generated. A first encryption key is used only in the 
authentication process, and a second encryption key is used in both the 
authentication process and as the key for encrypting subsequent communications. Use 
of two encryption keys requires that each of the two users apply its decryption key 
to complete the authentication and encryption key agreement process successfully. 

4 Claims, 5 Drawing figures 
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TITLE: Method for secure communication in a telecommunications system 

Application Filing Date (1) : 
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1. In a telecommunications system having a first and second transceiving device, 
wherein each of the first and second transceiving devices is assigned a decryption 
key and a public encryption key, and said second transceiving device is assigned 
identifying information, a method for providing secure communications, said method 
comprising the steps of: 

selecting a first session key at the second transceiving device; 

encrypting the first session key using the public encryption key of said first 
transceiving device to generate a first message in the second transceiving device; 

transmitting the first message to the first transceiving device; 

decrypting the first message, at the first transceiving device using the decryption 
key of the first transceiving device to generate said first session key; 

encrypting the identifying information in said second transceiving device using 
said first session key to generate a second message; 

transmitting said second message from the second transceiving device to the first 
transceiving device; 

decrypting the second message at the first transceiving device using said first 
session key to generate the identifying information; 

verifying the identity of the second transceiving device using the identifying 
information; and 

in response to a positive verification in said step of verifying the identity of 
the second transceiving device: 

selecting a second session key at said first transceiving device; 

encrypting said second session key using the public encryption key of the second 
transceiving device to generate a third message in the first transceiving device; 

transmitting said third message to the second transceiving device; 

decrypting said third message, at the second transceiving device using the 



CLAIMS : 
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decryption key of the second transceiving device to generate said second session 
key; and 

using said second session key to encrypt subsequent communications between the 
first and second transceiving devices. 

2. The method of claim 1, wherein said system is assigned a decryption key and a 
public encryption key, and wherein said method further comprises the steps of: 

calculating and assigning a certificate for the second transceiving device by 
applying the decryption key of the system to a resultant value of a selected 
function, wherein the selected function has as inputs the public encryption key of 
the second transceiving device and the identifying information. 
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OTHER PUBLICATIONS 

"Smart Credit Cards: The answer to cashless shopping" IEEE Spectrum pp. 43-49, Feb. 
1984. 

ART-UNIT: 222 

PRIMARY-EXAMINER: Cangialosi; Salvatore 

ATTY-AGENT-FIRM: Merchant Gould Smith Edell Welter & Schmidt 



ABSTRACT: 

When transferring data, an electronic document or the like from a first computer 
system (100) to a second computer system (200) via a data transmission line (300), 
e.g. a public data transmission line, a first output and input station (122) 
comprising a first electronic card (124) and a second output and input station 
(222) comprising a second electronic card (224) are used. The data is transferred 
to the first electronic card (124) from the first computer system (100) via the 
first station (122) and is encrypted in the first electronic card (124), whereupon 
the data is output from the first electronic card (124) in encrypted form and 
transferred via the first station (122) to the first computer system (100) and 
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therefrom to the data transmission line (300) . The data is received by the other 
computer system (200) in encrypted form and is transferred to the second electronic 
card (224) via the second station (222), whereupon the data is decrypted in the 
second electronic card (224) and is output from the second electronic card via the 
second station (222) to the second computer system (-2 00) . As the data transfer 
between the first and the second computer system is carried out between the first 
and the second electronic card, no third parties have neither authorized or 
unauthorized possibility of interfering with the data transmission and possibly 
changing the data or the electronic document. The first and second electronic card 
(124, 224 ) constitute a coherent set of cards comprising coherent 
encryption/decryption keys input into the internal storages of the cards. 

33 Claims, 6 Drawing figures 
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OTHER PUBLICATIONS 

"Smart Credit Cards: The answer to cashless shopping" IEEE Spectrum pp. 43-49, Feb. 
1984. 

ART-UNIT: 222 

PRIMARY-EXAMINER: Cangialosi; Salvatore 

ATTY-AGENT-FIRM: Merchant Gould Smith Edell Welter & Schmidt 



ABSTRACT : 

When transferring data, an electronic document or the like from a first computer 
system (100) to a second computer system (200) via a data transmission line (300), 
e.g. a public data transmission line, a first output and input station (122) 
comprising a first electronic card (124) and a second output and input station 
(222) comprising a second electronic card (224) are used. The data is transferred 
to the first electronic card (124) from the first computer system (100) via the 
first station (122) and is encrypted in the first electronic card (124), whereupon 
the data is output from the first electronic card (124) in encrypted form and 
transferred via the first station (122) to the first computer system (100) and 
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therefrom to the data transmission line (300) . The data is received by the other 
computer system (200) in encrypted form and is transferred to the second electronic 
card (224) via the second station (222), whereupon the data is decrypted in the 
second electronic card (224) and is output from the second electronic card via the 
second station (222) to the second computer system (200) . As the data transfer 
between the first and the second computer system is carried out between the first 
and the second electronic card, no third parties have neither authorized or 
unauthorized possibility of interfering with the data transmission and possibly 
changing the data or the electronic document. The first and second electronic card 
(124, 224) constitute a coherent set of cards comprising coherent 
encryption/decryption keys input into the internal storages of the cards. 

33 Claims, 6 Drawing figures 
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Application Filing Date ( 1 ) : 
19960510 

Brief Summary Text (81) : 

The present invention furthermore relates to a system for transferring data, an 
electronic document or the like from a first computer system to a second computer 
system, said second computer system being autonomous in relation to said first 
computer system, via a data transmission line, e.g. a public data transmission 
line, in accordance with the method according to the first aspect of the invention, 
which system in accordance with the invention is characterized in that it comprises 
the first station and the second station, which are connected to and communicate 
with the first and the second computer system, respectively, and which furthermore 
via the first and the second computer system, respectively, and the corresponding 
interfacing means are connected to the data transmission line, as well as the first 
and the second electronic card, which constitute a coherent set of cards comprising 
the coherent encryption/decryption keys input into the internal storages of the 
cards. The coherent set of cards used in this system according to the invention 
preferably comprises cards of the type DES Smart Card (Philips), Super Smart Card 
(Bull) or CP8 Smart Card (Bull) or at least a card implemented on a printed circuit 
card, a thick-film substrate, a thin- film module, etc. 

Brief Summary Text (82) : 

The present invention furthermore relates to a system for transferring data, an 
electronic document or the like from a first computer system to a second computer 
system, said second computer system being autonomous relative to said first 
computer system, via a data transmission line, e.g. a public data transmission 
line, said system being characterized in that it comprises said first station and 
said second station, which are connected to and communicate with said first and 
said second computer system, respectively, and which furthermore via said first and 
said second computer system, respectively, and corresponding interfacing means are 
connected to said data transmission line, as well as said first and said second 
card, which constitute a coherent set of cards comprising said coherent data input 
into said cards concerning said coherent encryption/decryption keys stored in said 
internal storages of said corresponding stations. The coherent set of data, which 
is used according to the system and the method according to the second aspect of 
the invention can be a magnetic card as well as an electronic card which again can 
be of above-mentioned type. In accordance with this aspect of the invention, any 
other medium can furthermore be used. 

Current US Cross Reference Classification (1) : 
380/278 
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ART-UNIT: 27 6 

PRIMARY -EXAMINER : Hayes; Gail O. 
ASSISTANT-EXAMINER: White; Carmen 

ATTY-AGENT-FIRM: Fliesler, Dubb, Meyer & Love joy 



ABSTRACT : 

A system is disclosed for automatically distributing secured versions (*Sys.sub. — 
D.sub. — key*) of a file decryption key (Sys.sub. — D.sub. — key) to a plurality of 
file users by way of the file's security label. The label is defined to contain a 
plurality of Access-Control-Entries Records (ACER'S) where each ACER includes a 
respective secured version (*Sys.sub. — D.sub. — key*) of the file decryption key. 
Each such secured version (*Sys.sub. — D.sub.-- key*) is decipherable by a 
respective ACER private key. Each ACER may include respective other data such as: 

(a) ACER-unique identifying data for uniquely identifying the ACER or an associated 
user; 

(b) decryption algorithm identifying data for identifying the decryption process to 
be used to decrypt the encrypted *DATA* portion of the file; and 

(c) special handling code for specifying special handling for the code-containing 
ACER. The label is preferably covered by a digital signature but includes an 
extension buffer that is not covered by the digital signature. Users who wish to 
have an ACER of their own added to the label may submit add-on requests by writing 
to the extension buffer. 



53 Claims, 10 Drawing figures 
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TITLE: Cryptographic file labeling system for supporting secured access by multiple 
users 



Application Filing Date ( 1 ) : 
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44. A method for distributing encrypted *FILE DATA* signals to a plurality of users 
and for providing respective authorized users among said plurality of users each 
with intelligible access to information represented by a plaintext version of the 
encrypted *FILE DATA* signals, 

wherein said *FILE DATA* signals are producible by using a first encrypting 
algorithm in combination with a first encryption key to encrypt the plaintext 
version of said *FILE DATA* signals, 

said method comprising the steps of: 

(a) conveying the encrypted *FILE DATA* signals to a first data conveyance means; 

(b) defining a companion first decryption algorithm and a companion first 
decryption key that are usable for decrypting the conveyed *FILE DATA* signals; 

(c) for each respective authorized user, encrypting the companion first decryption 
key by using a respective second encryption algorithm in combination with a 
respective second encryption key to thereby produce a respective encrypted version 
of the companion first decryption key, wherein said second encryption key is a 
public key of the respective authorized user, and said respective second encryption 
algorithm is an asymmetric algorithm based on paired public and private keys; 

(d) for each respective authorized user, conveying the respective encrypted version 
to the first conveyance means; and 

(e) for each respective authorized user, associating at least partially by means of 
the first conveyance means, the respective encrypted version of the companion first 
decryption key with the conveyed *FILE DATA* signals. 



CLAIMS : 
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ART-UNIT: 276 

PRIMARY-EXAMINER: Gregory; Bernarr E. 
ASSISTANT- EXAMINER : Laufer; Pinchus M. 

ATT Y-AGENT- FIRM: Frommer Lawrence & Haug, LLP. Frommer; William S. 



ABSTRACT : 

When information to be recorded is encrypted by using an encryption key, an 
encryption key based on inherent information inherent in a recording medium is 
generated. The information to be recorded on the recording medium is encrypted 
based on the encryption key. The inherent information inherent in the recording 
medium is a specific information on a disk. When an encrypted information recorded 
on a recording medium is decrypted, there are reproduced from a recording medium a 
first file storing information encrypted by using an encryption key generated based 
on a random data to be inserted into a predetermined portion of the encrypted 
information to be recorded on a recording medium and a second file storing data 
indicative of a predetermined portion of the random data to be inserted into a 
predetermined portion of the encrypted information. The random data is detected 
from the encrypted information stored the reproduced first file based on the data 
stored in the reproduced second file and indicating the predetermined portion of 
the random data. A decryption key is generated from the detected random data. The 
encrypted information of the reproduced first file is decrypted by using the 
decryption key. 

19 Claims, 15 Drawing figures 
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Application Filing Date ( 1) : 
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Brief Summary Text ( 6) : 

A cryptosystem employing a key (an encryption key) includes two cryptosystems; a 
common-key cryptographic scheme and a public-key cryptosystem. In the common-key 
cryptosystem, a key (encryption key) used upon encryption is the same as a key 
(decryption key) used upon decryption. For example, of the common-key 
cryptosystems, a data encryption standard (DES) system is frequently employed. On 
the other hand, in the public-key cryptosystem, an encryption key and a decryption 
key are different from each other. In this public-key cryptosystem, the encryption 
key is opened to the public, but the decryption key is kept secret. In general, 
such encryption method and decryption method are known. 

Current US Original Classification (1) : 
705/57 
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ART-UNIT: 276 

PRIMARY -EXAMINER : Gregory; Bernarr E. 
ATTY-AGENT-FIRM: Oliff & Berridge, PLC 



ABSTRACT : 

A data processing apparatus with software protecting functions capable of enhancing 
the level of encryption security independently of the memory management method of 
the system comprising the apparatus. Upon receiving target data to be encrypted, an 
encryption key generation unit generates an encryption key in accordance with an 
attribute of the target data. Using the encryption key, an encryption unit encrypts 
the target data. The encrypted data is placed into a storage unit. When a request 
is made to process the encrypted data, a decryption key generation unit generates a 
decryption key in accordance with the attribute of the encrypted data. A decryption 
unit decrypts the encrypted data using the decryption key. The decrypted data is 
processed by a processing unit. A control unit supplies the encryption unit with 
the data processed by the processing unit as data to be encrypted. 

19 Claims, 52 Drawing figures 
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DOCUMENT- IDENTIFIER : US 5915025 A 

TITLE: Data processing apparatus with software protecting functions 

Application Filing Date (1) : 
19970115 

Detailed Description Text (12): 

In the above constitution, data is initially encrypted and supplied from software 
suppliers to users over the network or by means of CO-ROM ' s and the like. The 
encryption method used in such cases is any one of well-known encryption methods 
offering high levels of encryption security. Illustratively, a software supplier 
may encrypt data for a user by utilizing the DES (Data Encryption Standard, the 
encryption algorithm disclosed in 1977 by the Standards Bureau, U.S. Department of 
Commerce, currently the American National Standards Institute) . The encrypted data 
may be offered to the user together with a decryption key that is encrypted 
illustratively by a public key based on the RSA (Rivest, Shamir, Adleman; the 
algorithm devised by Ronald Rivest, Adi Shamir and Leonard Adleman) for a data 
processing apparatus with software protecting functions. The user transfers the 
encrypted data and the decryption key encrypted by the public key for the data 
processing apparatus, from the I/O interface 42 to the distributed software 
decryption means 32 for decryption. The distributed software decryption means 32 
decrypts the decryption key by its own RSA secret Key, and subsequently decrypts 
the encrypted data by the decryption key. The data thus decrypted is sent directly 
to the encryption means 33 so as to be encrypted by a secret encryption method or 
encryption key. The user cannot access the decrypted data. The data encrypted by 
the encryption means 33 is stored into the storage means 41. The data processing 
means 31 causes the decryption means 34 to decrypt the encrypted data from the 
storage means 41, receives the decrypted data, and executes instructions included 
in the data. If any part of the data output by the data processing means 31 needs 
to be encrypted, that data part is encrypted by the encryption means 33 before 
being placed into the storage means 41. 

Detailed Description Text (17): 

In the constitution above, the encrypted data and decryption key are supplied over 
the network or by means of a CD-ROM and the like from a software supplier to the 
user. To load the encrypted data into the apparatus for execution requires 
initially that the decryption key encrypted by a public key for the apparatus be 
sent to the distributed software decryption means 52 via the I/O interface 62. The 
decrypted data is forwarded directly to the encryption means 53. At the same time, 
the key selection means 55 selects an encryption key group corresponding to the 
storage destination page number of the data. The selected encryption key group is 
fed from the key supply means 56 to the encryption means 53. The data sent to the 
encryption means 53 is encrypted by the key group supplied by the key supply means 
56. Because the encryption method or encryption keys in this case are of secret 
nature, the user cannot access the decrypted data. The data encrypted by the 
encryption means 53 using a different encryption key group for each page is placed 
into the storage means 61. The excess pages not accommodated by the storage means 
61 are swapped out to the hard disk 66. Where the data processing means 51 is to 
execute an encrypted program in the storage means 61, the key selection means 55 
first selects from the key supply means 56 a decryption key group corresponding to 
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the data storage destination page. The decryption means 54 then decrypts the data 
using the selected decryption key group. The program thus decrypted is executed by 
the data processing means 51. If any part of the data output by the data processing 
means 51 needs to be encrypted, that data part is encrypted by the encryption means 
53 before being placed into the storage means 61. 

Current US Cross Reference Classification (2) : 
705/51 
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ART-UNIT: 362 

PRIMARY-EXAMINER: Gregory; Bernarr E. 

ATT Y-AGENT- FIRM: Reichman; Ronald Scolnick; Melvin J. 



ABSTRACT : 

This invention is a system for producing and distributing new decryption keys to 
verifiers. Verifier decryption key updates are printed in a secure manner on paper 
or postcards and mailed to the owners of the verifiers. The paper or postcards 
containing the verifier decryption key is scanned into the verifier and the 
verifier's key file is updated. 

14 Claims, 4 Drawing figures 
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TITLE: Key distribution system 



Application Filing Date ( 1) : 
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Detailed Description Text (10): 

Computer 12 generates a unique client master cryptographic key pair, that includes 
an encryption key and a decryption key. Processor 18 of authenticator 13 generates 
a unique session cryptographic key pair, that includes an encryption key and a 
decryption key i.e. private and public key respectively The master cryptographic 
public-key is the key that unlocks the certificate. The certificate contains the 
session public key. The session public key is used to decrypt the session data. 
Session data may be the client public key, a certificate revocation, a new master 
public key or program updates for processor 37 of verifier 35. Authenticator 13 
stores the private portion of session cryptographic key pair in memory 9 and 
transmits the public portion of session cryptographic key pair to computer 12. 

Current US Original Classification (1) : 
380/278 
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ART-UNIT: 222 

PRIMARY-EXAMINER: Barron, Jr.; Gilberto 
ATTY-AGENT- FIRM : Seed and Berry LLP 



ABSTRACT : 

A system for controlling unauthorized access to information distributed to users 
and, more particularly, for controlling unauthorized access to software distributed 
to users is provided. One method utilizing the system of the present invention 
enables the software to be encrypted using a single encryption key and to be 
decrypted using a multiplicity of "decryption" keys, each of which is unique to a 
particular user. The "decryption" keys are the products of numeric representations 
of identifying information relating to users and unique user keys generated using 
the numeric representations and a "true" decryption key. Since each user receives . a 
unique user key and both the numeric representation and the user key are generated 
using the identifying information, if the user reveals the numeric representation 
and the user key (or the product of the numeric representation and the user key) , 
the numeric representation and the user key can be traced to the user who revealed 
them. Another method utilizing the system of the present invention introduces 
randomness or pseudo-randomness into the decryption scheme to provide an additional 
level of security to the scheme. 

39 Claims, 10 Drawing figures 
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DOCUMENT-IDENTIFIER: US 5586186 A 

TITLE: Method and system for controlling unauthorized access to information 
distributed to users 



Application Filing Date (1) : 
19940715 

Brief Summary Text (8) : 

Any solution involving encryption must be based on an encryption algorithm. 
Generally, there are two types of encryption algorithms, symmetric and public key. 
A symmetric algorithm is one in which the encryption key and the decryption key can 
be generated from each other. Often, the encryption key and the decryption key will 
be the same. A public key algorithm, on the other hand, is one in which the 
encryption key and the decryption key are different. Generally, the encryption key 
is made public, the decryption key is kept secret, and the private decryption key 
cannot be easily generated from the public encryption key. 

Detailed Description Text (3) : 

The preferred embodiments of the present invention use a public key algorithm. As 
discussed above, a public key algorithm is one in which the encryption key and the 
decryption key are different. Generally, the encryption key is made public, the 
decryption key is kept. secret, and the private decryption key cannot be easily 
generated from the public encryption key. More specifically, the preferred 
embodiments of the present invention use a modified RSA algorithm. The modified RSA 
algorithm used in the present invention is partially based on the RSA algorithm, 
but provides additional features not provided by the RSA algorithm (these 
additional features will be described in detail below) . 

Current US Cross Reference Classification (2) : 
705/51 

CLAIMS : 

20. A system for controlling unauthorized access to information distributed to 
users, the system comprising: 

an encryptor for generating an encryption key and a decryption key using a public 
key algorithm and for encrypting the information using the encryption key; 

a user key generator for receiving identifying information from a user, for 
generating a numeric representation of the identifying information, and for 
generating a unique user key using the numeric representation of the identifying 
information and decryption key information; and 

a decryptor for decrypting the encrypted form of the information using the numeric 
representation of the identifying information and the unique user key. 
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BBC Research Department Report, Aug. 1988, Tadworth, Surrey, UK, pp. 1-18, D. T. 
Wright, "Conditional Access Broadcasting: Datacare 2, An Over-Air Enabled System 
For General Purpose Data Channels". 

ART-UNIT: 222 

PRIMARY-EXAMINER: Gregory; Bernarr E. 

ATTY-AGENT-FIRM: Fitzpatrick, Cella, Harper & Scinto 



There is disclosed a multimedia network system for transmitting real-time 
communication type information such as a television video signal and storage type 
information such as a computer file using at least one transmission path. The real- 
time communication type information is encrypted by a secret-key system, and the 
storage type information is encrypted by a public-key system. A common encryption 
key of the public-key system is changed in each communication. High-speed 
information can be safely encrypted and transmitted. 

14 Claims, 10 Drawing figures 
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TITLE: Multimedia network system 

Application Filing Date ( 1) : 
19910115 

Brief Summary Text (11) : 

In contrast to this, in the public-key cryptosystem, a pair of different encryption 
and decryption keys are used, and an encryption key is disclosed to all the 
terminals . 

Brief Summary Text (26) : 

More specifically, a multimedia network system for transmitting real-time 
communication type information such as a television video signal and storage type 
information such as a computer file using at least one transmission path, comprises 
secret-key encryption means for encrypting the real-time communication type 
information by secret-key system in which only transmitting and receiving terminals 
of the information have encryption and decryption keys, public-key encryption means 
for encrypting the storage type information by a public-key system in which all the 
terminals commonly have their own encryption keys, and only a receiving terminal of 
the information has its own decryption key, and secret-key control means for 
causing the secret-key encryption means to change a common encryption key in each 
communication, and causing the public-key encryption means to encrypt and transmit 
the changed key. 

Current US Cross Reference Classification (2) : 
380/231 

Current US Cross Reference Classification (5) : 
705/51 

CLAIMS : 

1. A multimedia network system for transmitting real-time communication type 
information and storage type information using at least one transmission path, 
comprising : 

a transmitting terminal comprising secret-key encryption means for encrypting the 
real-time communication type information by a secret-key system in which only 
transmitting and receiving terminals of the information have encryption and 
decryption keys, public-key encryption means for encrypting the storage type 
information by a public-key system in which all the terminals commonly share their 
own encryption keys, and only a receiving terminal of the information has its own 
decryption key, and control means for causing said secret-key encryption means to 
change a common encryption key in each communication, and causing said public-key 
encryption means to encrypt and transmit the changed key. 

2. A multimedia network system for communicating real-time communication type 
information and storage type information using at least one transmission path, 
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comprising : 



a receiving terminal comprising secret-key decryption means for decrypting the 
real-time communication type information by a secret-type system in which only 
transmitting and receiving terminals .of the information have encryption and 
decryption keys, public-key decryption means for decrypting the storage type 
information by a public-key decryption means for decrypting the storage type 
information by a public-key system in which all the terminals commonly share their 
own encryption keys, and only a receiving terminal of the information has its own 
decryption key, and secret-key control means for causing said secret-key decryption 
means to change a common decryption key in each communication. 

3. A multimedia network system for transmitting real-time communication type 
information and storage type information using at least one transmission path, 
comprising : 

a transmitting terminal comprising secret-key encryption means for encrypting the 
real-time communication type information by a secret-key system in which only 
transmitting and receiving terminals of the information have encryption and 
decryption keys, public-key encryption means for encrypting the storage type 
information by a public-key system in which all the terminals commonly share their 
own encryption keys, and only a receiving terminal of the information has its own 
decryption key, and first control means for causing said secret-key encryption 
means to change a common encryption key in each communication, and causing said 
public key encryption means to encrypt and transmit the changed key; and 

a receiving terminal comprising a secret-key decryption means for decrypting the 
real-time communication type information by secret-key system in which only 
transmitting and receiving terminals of the information have encryption and 
decryption keys, public-key decryption means for decrypting the storage type 
information by a public-key system in which all the terminals commonly have their 
own encryption keys, and only a receiving terminal of the information has its own 
description key, and second control means for causing said secret-key decryption 
means to change a common decryption key in each communication. 

5. The system according to claim 3, wherein a file for ordering information from 
said receiving terminal to said transmitting terminal, and the real-time 
communication type information transmitted from said transmitting terminal to said 
receiving terminal in accordance with the file are encrypted using the secret-key 
by said secret-key encryption means, and a reception confirmation file for the 
real-time communication type information, which file is transmitted from said 
receiving terminal to said transmitting terminal, and a charge demand file from 
said transmitting terminal to said receiving terminal are encrypted by said public 
key encryption means, and are decrypted by the decryption key inherent to said 
receiving terminal . 
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L20: Entry 19 of 20 File: USPT Feb 20, 1990 

US-PAT-NO: 4903296 

DOCUMENT-IDENTIFIER: US 4903296 A 

TITLE: Implementing a shared higher level of privilege on personal computers for 
copy protection of software 

DATE- ISSUED: February 20, 1990 

INVENTOR-INFORMATION: 

NAME CITY STATE ZIP CODE COUNTRY 

Chandra; Akhileshwari N. Mahopac NY 

Comerford; Liam D. Carmel NY 

White; Steve R. New York NY 



ASSIGNEE-INFORMATION: 
NAME 

International Business Machines 
Corporation 



CITY STATE ZIP CODE COUNTRY TYPE CODE 
Armonk NY 02 



APPL-NO: 06/930219 [PALM] 
DATE FILED: November 12, 198 6 



PARENT-CASE: 

This application is a division of U.S. Ser. No. 06/651,184 filed on Nov. 14, 1984, 
now U.S. Pat. No. 4,644,493. 

INT-CL: [04] H04L 9/00 



US-CL-ISSUED: 380/4; 364/969, 364/969.2, 364/969.4 
US-CL-CURRENT: 705/56; 380/.282, 705 /57 



FIELD-OF-SEARCH: 364/200, 364/900, 360/131, 380/3, 380/4, 380/49, 380/25 



PRIOR-ART-DISCLOSED : 

U.S. PATENT DOCUMENTS 




PAT-NO ISSUE-DATE PATENTEE-NAME US-CL 

□ 4168396 September 1979 Best 364/900 

□ 4246638 January 1981 Thomas 364/200 

□ 4465901 August 1984 Best 364/200 
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□ 4558176 December 1985 Arnold et al. 364/900 

□ 4573119 February 1986 Westheimer et al . 364/200 

□ 4577289 March 1986 Comerford et al . 364/900 



ART-UNIT: 237 

PRIMARY-EXAMINER: Heckler; Thomas M. 
ASSISTANT-EXAMINER: Mills; John G. 
ATT Y- AGENT -FIRM: Arnold; Jack M. 



ABSTRACT: 

Method and apparatus which restricts software, distributed on magnetic media, to 
use on a single computing machine. The original medium is functionally uncopyable, 
until it is modified by the execution of a program stored in a tamper proof co- 
processor which forms a part of the computing machine. The modified software on the 
original medium may then be copied, but the copy is operable only on the computing 
machine containing the co-processor that performed the modification. 

4 Claims, 2 0 Drawing figures 
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File: USPT 



Feb 20, 1990 



DOCUMENT- IDENTIFIER : US 4903296 A 

TITLE: Implementing a shared higher level of privilege on personal computers for 
copy protection of software 

Application Filing Date ( 1) : 
19861112 

Detailed Description Text (21) : 

3. The decryption key in encrypted form where the encryption is by the RSA public 
key provided by the support hardware manufacturer. 
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Current US Cross Reference Classification (2 ) : 
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L2: Entry 1 of 1 



File: USPT 



Jun 6, 2000 



DOCUMENT-IDENTIFIER: US 6072874 A 

TITLE: Signing method and apparatus using the same 
Brief Summary Text (6) : 

Japanese Patent Application Laid-Open No. Hei . 4-334227 (1992) discloses a method 
of forcing a user of charged broadcasting program to execute the digital signature 
on fee imposition information so that future denial of use of the charged program 
may be prevented. According to the invention of the Laid-Open publication, an 
encrypted program and a decryption key for decrypting the encrypted program are 
transmitted to a broadcasting program receiving decoder from the broadcasting 
station. The decoder receives the request for providing a program from the 
receiver, and notifies the receiver of the amount of the fee imposed on watching 
and listening to the program. If the amount of the fee is acceptable to the 
receiver, he/she executes digital signature with respect to the amount of the fee 
and returns it to the decoder. Then the decoder examines the returned digital 
signature of the amount of the fee to verify whether the signature is generated by 
a legitimate receiver. After legitimacy of the signature is verified, the decoder 
decrypts the requested program by the key obtained in advance, and provides the 
program to the receiver. 

Detailed Description Text (9) : 

The secret key storing unit 32 stores a secret key D which makes a pair with the 
public key E. The decryption unit 33 decrypts key information K.sup.eE encrypted by 
the public keys E and e by utilizing the secret key D, and generates data K.sup.e. 
The concatenation computation unit 34 concatenates the data K.sup.e transmitted 
from the decryption unit 33 and a Hash value of the message by a predetermined 
computation and then transmits concatenated information to the authentication card 
23. In the concatenated information, the encrypted key information k.sup.e is 
inseparable from the Hash value and they cannot be separated even if the key d 
stored in the authentication card 23 is used. In the authentication card 23, the 
computation is performed on the concatenated information by utilizing the key d, 
and the result of computation is provided to the separation computation unit 35. 
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L3: Entry 1 of 1 File: USPT Jun 6, 2000 



DOCUMENT- IDENTIFIER : US 6072874 A 

TITLE: Signing method and apparatus using the same 
Abstract Text (1) : 

The present invention provides a signing apparatus used for signing by a user on 
usage information of a source provided in a format made available by the use of key 
information. The apparatus includes a unit for generating the usage information 
which is to be signed, a unit for performing a first computation by utilizing the 
key information which has been encrypted and the usage information, a unit for 
performing a second computation by utilizing a user's private key and a result of 
the first computation. The apparatus further includes a unit for performing a third 
computation by utilizing a result of the second computation, and thereby generating 
the key information which has been decrypted and a result of the computation 
performed on the usage information by utilizing the user's private key . The 
apparatus further includes a unit for making the source available by utilizing the 
decrypted key information. 

Brief Summary Text (6) : 

Japanese Patent Application Laid-Open No. Hei . 4-334227 (1992) discloses a method 
of forcing a user of charged broadcasting program to execute the digital signature 
on fee imposition information so that future denial of use of the charged program 
may be prevented. According to the invention of the Laid-Open publication, an 
encrypted program and a decryption key for decrypting the encrypted program are 
transmitted to a broadcasting program receiving decoder from the broadcasting 
station. The decoder receives the request for providing a program from the 
receiver, and notifies the receiver of the amount of the fee imposed on watching 
and listening to the program. If the amount of the fee is acceptable to the 
receiver, he/she executes digital signature with respect to the amount of the fee 
and returns it to the decoder. Then the decoder examines the returned digital 
signature of the amount of the fee to verify whether the signature is generated by 
a legitimate receiver. After legitimacy of the signature is verified, the decoder 
decrypts the requested program by the key obtained in advance, and provides the 
program to the receiver. 

Brief Summary Text (26) : 

Additional objects and advantages of the invention will be set forth in part in the 
description which follows and in part will be obvious from the description, or may 
be learned by practice of the invention. The objects and advantages of the 
invention may be realized and attained by means of the instrumentalities and 
combinations particularly pointed out in the appended claims. To achieve the 
objects and in accordance with the purpose of the invention, as embodied and 
broadly described herein, the first aspect of a signing apparatus of the present 
invention used for executing signature by a user on usage information of a source 
provided in a format made to be available by the use of key information, comprises 
means for generating the usage information which is to be signed, means for 
performing a first computation by utilizing the key information which is encrypted 
and the usage information, means for performing a second computation by utilizing a 
user's private key and a result of the first computation, means for performing a 
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third computation by utilizing a result of the second computation, and thereby 
generating the key information which has been decrypted and a result of the 
computation performed on the usage information by utilizing the user's private key, 
and means for making the source available by utilizing the decrypted key 
information . 

Brief Summary Text (28) : 

In the second aspect of the present invention, for a signing apparatus used for 
executing signature by a user on usage information of a source provided in a format 
made to be available by the use of key information; a guarding device which guards 
inside information from external access, means for generating the usage information 
which is to be signed, means disposed in the guarding device for performing a first 
computation by utilizing the key information which is encrypted and the usage 
information, means for performing a second computation by utilizing a user's 
private key and a result of the first computation, means disposed in the guarding 
device for performing a third computation by utilizing a result of the second 
computation, and thereby generating the decrypted key information and a result of 
the computation performed on the usage information by utilizing the key information 
of the user, and means disposed in the guarding device for making the source 
available by utilizing the decrypted key information are provided. 

Brief Summary Text (31) : 

Moreover, in the second aspect, it may be possible to provide means for decrypting 
the information which has been encrypted by a key unavailable for the user in the 
guarding device so that the encrypted key information may be further encrypted by 
the key unavailable for the user, provided to the means for decrypting, and then 
the first computation may be performed on the key information decrypted by the 
means for decrypting . 

Brief Summary Text (33) : 

Moreover, in the first and second aspects of the present invention, a plurality of 
encrypted key information may be generated for a single source and content of the 
usage information pared with key information may be a fact that the key information 
decrypted immediately before is used, and the use of the source may be closed when 
the user refuses to execute signature on the usage information. 

Brief Summary Text (34) : 

In the third aspect of the present invention, for an information processing 
apparatus having a source providing system and a source using system; means 
disposed in the source providing system for protecting and then outputting a 
source, means disposed in the source providing system for encrypting and outputting 
key information for cancelling the protection, a guarding device disposed in the 
source using system for guarding inside information from external access, means 
disposed in the source using system for generating usage information which is to be 
signed, means disposed in the guarding device for performing a first computation by 
utilizing the encrypted key information and the usage information, means disposed 
in the source using system for performing a second computation by utilizing a 
private key of a user and a result of the first computation, means disposed in the 
guarding device for performing a third computation by utilizing a result of the 
second computation, and thereby generating the decrypted key information and a 
result of the computation performed on the usage information by utilizing the 
user's private key, and means disposed in the guarding device for making the source 
available by utilizing the key information are provided. 

Brief Summary Text (36) : 

In the fourth aspect of the present invention, for a signing method used for 
signing by a user on usage information of a source provided in a format made to be 
available by the use of key information; steps of generating the usage information 
which is to be signed, performing a first computation by utilizing the encrypted 
key information and the usage information, performing a second computation 
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utilizing a result of the first computation and a user's private key / performing a 
third computation by utilizing a result of the second computation, and thereby 
generating the key information which has been decrypted and a result of the 
computation on the usage information by utilizing the user's private key, and 
making the source available by utilizing the key, information are provided. 

Brief Summary Text (38) : 

In the fifth aspect of the present invention, for a computer program product for 
use with a computer; a computer usable medium having computer readable program code 
means embodied in the medium for causing the computer to process signature executed 
by a user on usage information of a source provided in a format made to be 
available by the use of key information, computer readable program code means for 
causing the computer to generate usage information which is to be signed, computer 
readable program code means for causing the computer to perform a first computation 
by utilizing the key information which has been encrypted and the usage 
information, computer readable program code means for causing the computer to 
perform a second computation utilizing a result of the first computation and a 
private key of the user, computer readable program code means for causing the 
computer to perform a third computation by utilizing a result of the second 
computation, and thereby to generate the key information which has been decrypted 
and a result of the computation performed on the usage information by utilizing the 
private key of the user, and computer readable program code means for making the 
source available by utilizing the key information are provided. 

Brief Summary Text (40) : 

In the sixth aspect of the present invention, for a signature verification 
apparatus used for executing signature by a user on usage information of a source 
provided in a format made to be available by the use of key information, means for 
generating the usage information which is to be signed, means for performing a 
first computation by utilizing the encrypted key information and the usage 
information to be signed, means for performing a third computation by utilizing a 
result of a second computation for decrypting the key information and signing 
performed on a result of the first computation by utilizing a user's private key, 
and thereby generating the key information which has been decrypted and a result of 
the computation performed on the usage information by utilizing the user's private 
key, and means for making the source available by utilizing the decrypted key 
information are provided. 

Detailed Description Text (9) : 

The secret key storing unit 32 stores a secret key D which makes a pair with the 
public key E. The decryption unit 33 decrypts key information K.sup.eE encrypted by 
the public keys E and e by utilizing the secret key D, and generates data K.sup.e. 
The concatenation computation unit 34 concatenates the data K.sup.e transmitted 
from the decryption unit 33 and a Hash value of the message by a predetermined 
computation and then transmits concatenated information to the authentication card 
23. In the concatenated information, the encrypted key information k.sup.e is 
inseparable from the Hash value and they cannot be separated even if the key d 
stored in the authentication card 23 is used. In the authentication card 23, the 
computation is performed on the concatenated information by utilizing the key d, 
and the result of computation is provided to the separation computation unit 35. 

Detailed Description Text (12) : 

On the other hand, the encrypted key information K.sup.eE is received by the 
decryption unit 33 and decrypted into the data K.sup.e by utilizing the key D 
(steps 110 and 111). The concatenation computation is executed on the data K.sup.e 
and the Hash value. The concatenated information generated by the concatenation 
computation is provided to the authentication card 23 (steps 112-114) . The 
authentication card 23 receives the concatenated information, and in the Hash value 
checking unit 29, the message is checked by utilizing the Hash value (steps 106 and 
107) . After the check is completed, the signature computation unit 30 performs the 
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signature computation by using the secret key d (step 108), and the result of 
computation is provided to the separation computation unit 35 of the signature 
information issuing unit 21 (step 115) . 

CLAIMS: 

1. A signing apparatus used for signing by a user on usage information of a source 
provided in a format made to be available by the use of key information, 
comprising: 

means for generating said usage information which is to be signed; 

means for performing a first computation by utilizing said key information which 
has been encrypted and said usage information; 

means for performing a second computation by utilizing a private key of said user 
and a result of said first computation; 

means for performing a third computation by utilizing a result of said second 
computation, and thereby generating said key information which has been decrypted 
and a result of said computation performed on said usage information by utilizing 
said private key of said user; and 

means for making said source available by utilizing said decrypted key information, 
wherein said means for performing the first computation assumes the product of two 
large prime numbers to be a modulus, the two large prime numbers not being known to 
said user and, using said modulus, generates a first diagonal matrix having said 
encrypted key information and said usage information as components, and produces a 
second matrix from said first matrix, said second matrix being a different 
representation of said first matrix using an arbitrary basis. 

2 . A signing apparatus used for signing by a user on usage information of a source 
provided in a format made to be available by the use of key information, 
comprising: 

a guarding device for guarding inside information from external access; 

means for generating said usage information which is to be signed; 

means disposed in said guarding device for performing a first computation by 
utilizing said key information which has been encrypted and said usage information; 

means for performing a second computation by utilizing a private key of said user 
and a result of said first computation; 

means disposed in said guarding device for performing a third computation by 
utilizing a result of said second computation, and thereby generating said key 
information which has been decrypted and a result of said computation performed on 
said usage information by utilizing said private key of said user; and 

means disposed in said guarding device for making said source available by 
utilizing said decrypted key information, wherein said means for performing the 
first computation assumes the product of two large prime numbers to be a modulus, 
the two large prime numbers not being known to said user and, using said modulus, 
generates a first diagonal matrix having said encrypted key information and said 
usage information as components, and produces a second matrix from said first 
matrix, said second matrix being a different representation of said first matrix 
using an arbitrary basis. 
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4. The signing apparatus according to claim 2, further comprising: 



means disposed in said guarding device for decrypting information which has been 
encrypted by a key unavailable for said user, wherein said encrypted key 
information is further encrypted by said key unavailable for the user and provided 
to said means for decrypting, and said first computation is performed on said key 
information decrypted by said means for decrypting . 

9. A signature verification apparatus used for signing by a user on usage 
information of a source provided in a format made to be available by the use of key 
information, comprising: 

means for generating said usage information which is to be signed; 

means for performing a first computation by utilizing said key information which is 
encrypted and said usage information which is to be signed; 

means for performing a third computation by utilizing a result of a second 
computation for decrypting key information and signing performed on a result of 
said first computation by utilizing a private key of said user, and thereby 
generating said key information which is decrypted and a result of said computation 
performed on said usage information by utilizing said private key of said user; and 

means for making said source available by utilizing said decrypted key information, 
wherein said means for performing the first computation assumes the product of two 
large prime numbers to be a modulus, the two large prime numbers not being known to 
said user and, using said modulus, generates a first diagonal matrix having said 
encrypted key information and said usage information as components, and produces a 
second matrix from said first matrix, said second matrix being a different 
representation of said first matrix using an arbitrary basis. 

13. A signing apparatus used for signing by a user on usage information which shows 
using a source provided in a format made to be available by the use of key 
information, comprising: 

means for inputting said key information encrypted by a key which makes a pair with 
a private key of said user; 

means for storing said private key of said user; 

means for generating usage information which is to be signed; 

means for concatenating said encrypted key information, inputted by said means for 
inputting said key information, and said usage information generated by said means 
for generating usage informations- 
signing means for executing decryption of said encrypted key information of said 
concatenated information by utilizing said private key of said user stored in said 
means for storing, and for signing said usage information generated by said means 
for generating said usage information of said concatenated information by utilizing 
said private key of said user stored in said means for storings- 
means for separating said information processed by said signing means into said 
decrypted key information and said usage information which has been signed; and 

means for making said source available by utilizing said decrypted key information 
separated by said means for separating, wherein said means for concatenating 
assumes the product of two large prime numbers to be a modulus, the two large prime 
numbers not being known to said user and, using said modulus, generates a first 
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diagonal matrix having said encrypted key information and said usage information as 
components, and produces a second matrix from said first matrix, said second matrix 
being a different representation of said first matrix using an arbitrary basis. 
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ABSTRACT : 

A network transaction system applicable to cyberspace banking services using an 
open network, which allows customers to authenticate themselves through a 
simplified procedure. A customer's terminal station and a plurality of bank systems 
are interconnected via networks, and it is assumed that the customer wishes to 
newly open a bank account in a bank system among them, or a target bank system, and 
that the customer has an existing bank account in a different bank system, or an 
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cooperative bank system. Using his/her terminal station, the customer applies for a 
new bank account by supplying the target bank system with a ciphertext message 
containing existing account information descriptive of the customer's bank account 
in the cooperative bank system. The target bank system requests the cooperative 
bank system to confirm the customer's existing bank account, while forwarding 
thereto a part of the ciphertext message containing the existing account 
information. The cooperative bank system decrypts the received message and confirms 
the validity of the account that the customer claims to own. It then returns a 
response message to the target bank system to report the result of the account 
confirmation. The target bank system decides whether to accept or to reject the 
application for a new account based on the response message from the cooperative 
bank system. 

6 Claims, 7 Drawing figures 
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target bank secret key py and a target bank public key oy are assigned to a target 
bank Y (i.e., the target bank system 30), while a cooperative bank secret key pz 
and a cooperative bank public key oz are assigned to a cooperative bank Z (i.e., 
the cooperative bank system 50) . 
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ABSTRACT : 

In a public key encryption system where an individual is used as a unit, an idea of 
"group" is newly introduced. Then, both an encryption process operation of a plain 
text by an arbitrary member belonging to the group, and a decryption process 
operation of cryptogram information can be executed by employing such a combination 
key made from a group public key and a group secret key, which are produced in unit 
of "group", and further an individual public key and an individual secret key. With 
employment of this encryption system, while high secrecies can be maintained inside 
and outside the group, the cryptogram information can be commonly shared based upon 
a confirmation of a member among members within the group. Also, an electronic 
signature can be made by a member belonging to . the group. 

23 Claims, 17 Drawing figures 
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Brief Summary Text (16): 

Further, the present invention provides a decryption apparatus used in a public key 
encryption system arranged by a combination between a first key P and a second key 
S, the first key P being used in a data conversion for encrypting a plain text, and 
the second key S being different from the first key P and being used in a data 
conversion for decrypting a cryptogram to produce a plain text, comprising secret 
key decrypting means for decrypting an encrypted secret key Pj (S) based upon an own 
secret key Sj, or a secret key of a group, the encrypted secret key Pj (S) being 
produced by encrypting a decryption key S used to decrypt a cryptogram sentence 
based upon a public key Pj of a receiver of a cryptogram; and decrypting means for 
decrypting the cryptogram sentence based upon a decryption key S which is decrypted 
by the secret key decrypting means to be acquired. 
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2. The computer readable recording medium as claimed in claim 1, wherein said 
encrypted cryptogram information is a decryption key SI of another cryptogram 
information, and said encrypted group secret keys P. sub. Mi (S.sub.G) are decrypted 
by the member secret key S. sub. Mi specific to each of said members Mi to thereby 
acquire said group secret key S.sub.G, P.sub.G (SI) equal to said decryption key SI 
which is encrypted by said group public key P.sub.G is decrypted by said group 
secret key S.sub.G to thereby acquire said decryption key SI, and said another 
cryptogram information is decrypted by said acquired decryption key SI. 
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